This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/IHwozVBM-INdwAb4BanODhPGLiI.roa File: IHwozVBM-INdwAb4BanODhPGLiI.roa (raw, json) Hash identifier: 1/oeq5jje77YZDjelRYgYRU0FA3dhh29FV04+WbtmT0= Subject key identifier: 20:7C:28:CD:50:4C:F8:83:5D:C0:06:F8:05:A9:CE:0E:13:C6:2E:22 Certificate issuer: /CN=c092d8d5511b19ece456960f23bfa886ee1d570b Certificate serial: 019B7AC7BFBC3BA6DBC6948DE2858A1740CF Authority key identifier: C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/IHwozVBM-INdwAb4BanODhPGLiI.roa Signing time: Thu 01 Jan 2026 18:17:49 +0000 ROA not before: Thu 01 Jan 2026 18:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 91.106.32.0/24 maxlen: 24 91.106.33.0/24 maxlen: 24 91.106.34.0/24 maxlen: 24 91.106.35.0/24 maxlen: 24 91.106.36.0/24 maxlen: 24 91.106.37.0/24 maxlen: 24 91.106.38.0/24 maxlen: 24 91.106.39.0/24 maxlen: 24 91.106.40.0/24 maxlen: 24 91.106.41.0/24 maxlen: 24 91.106.42.0/24 maxlen: 24 91.106.43.0/24 maxlen: 24 91.106.44.0/24 maxlen: 24 91.106.45.0/24 maxlen: 24 91.106.46.0/24 maxlen: 24 91.106.47.0/24 maxlen: 24 91.106.48.0/24 maxlen: 24 91.106.49.0/24 maxlen: 24 91.106.50.0/24 maxlen: 24 91.106.51.0/24 maxlen: 24 91.106.52.0/24 maxlen: 24 91.106.53.0/24 maxlen: 24 91.106.54.0/24 maxlen: 24 91.106.55.0/24 maxlen: 24 91.106.56.0/24 maxlen: 24 91.106.57.0/24 maxlen: 24 91.106.58.0/24 maxlen: 24 91.106.59.0/24 maxlen: 24 91.106.60.0/24 maxlen: 24 91.106.61.0/24 maxlen: 24 91.106.62.0/24 maxlen: 24 91.106.63.0/24 maxlen: 24 109.61.4.0/24 maxlen: 24 109.61.5.0/24 maxlen: 24 109.61.6.0/24 maxlen: 24 109.61.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.crl rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.mft rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:bf:bc:3b:a6:db:c6:94:8d:e2:85:8a:17:40:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c092d8d5511b19ece456960f23bfa886ee1d570b Validity Not Before: Jan 1 18:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=207c28cd504cf8835dc006f805a9ce0e13c62e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:eb:9c:cb:05:2a:bd:cc:88:be:04:9c:d1: de:56:0f:87:c7:ce:ed:02:d4:b9:92:75:df:62:52: 45:a0:13:e1:0b:81:e5:e5:05:4e:24:1e:42:04:aa: fc:68:6d:05:74:7b:3d:9c:2c:d5:86:4c:3d:d1:cb: b7:55:b7:fa:08:5d:c1:a7:d7:4f:3d:c9:3b:38:b4: 71:84:99:38:b0:a3:3a:b8:87:32:b2:b9:8e:68:5c: 47:a1:f3:2b:17:a7:59:d4:c4:c4:4f:ee:5c:8c:0f: c0:f7:47:2b:1c:24:4f:c9:15:b4:07:89:5f:46:a0: 1a:f5:25:79:68:4a:ba:48:9a:34:6c:36:a3:03:22: 51:f4:9f:3f:07:99:1b:07:4f:f3:ee:13:d4:3a:a2: b4:e5:75:b4:6a:ec:a3:a1:35:c6:35:0a:73:01:11: 1f:c1:25:8a:00:05:b7:de:19:67:73:41:e0:44:f2: 78:c9:b9:e2:46:63:05:33:d2:61:f4:14:a2:ef:c8: e3:56:eb:14:98:8b:59:50:4c:fd:4d:d8:0b:7b:e1: cd:24:8d:0f:bc:83:86:a5:23:eb:07:61:39:d2:42: 28:57:7b:eb:5d:53:b0:2d:36:8c:a2:fe:71:7d:aa: 2c:34:03:5f:02:13:e5:b5:35:22:af:74:3c:bd:cd: d3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:7C:28:CD:50:4C:F8:83:5D:C0:06:F8:05:A9:CE:0E:13:C6:2E:22 X509v3 Authority Key Identifier: keyid:C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/IHwozVBM-INdwAb4BanODhPGLiI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.106.32.0/19 109.61.4.0/22 Signature Algorithm: sha256WithRSAEncryption ae:6f:33:bc:8e:21:5e:3f:cb:cc:07:18:4c:77:3b:2b:01:c8: 2f:d5:6e:44:71:b5:7e:ae:cb:61:2e:d7:a5:20:f2:de:a5:c4: 01:9b:c0:02:03:a2:6e:c7:e2:f9:8e:5b:c4:4c:65:75:88:d8: 2e:37:fe:af:e6:87:b8:da:6f:40:05:53:d4:73:ce:71:d3:73: 77:a3:cb:ec:40:03:0e:27:e7:15:43:96:54:f0:61:67:72:ad: ba:04:6f:3d:01:72:49:39:07:0c:9a:da:fd:35:d6:e7:83:9e: 7f:dc:37:54:16:e7:1f:ca:26:b3:d3:f9:5a:09:c9:e7:bd:68: 87:0e:1d:df:d7:03:14:4c:ed:8e:fa:45:ef:56:19:4e:61:8c: d8:03:85:14:55:42:57:cd:a6:d8:c8:cf:b3:03:cb:3d:65:78: 48:bb:25:45:ed:13:f3:ef:87:a0:cd:ba:4c:08:77:18:9f:37: d6:09:b6:92:f0:d0:42:82:5b:fd:09:93:e8:bf:6c:d6:e4:39: 85:7b:76:ed:47:02:19:87:1f:59:f9:b9:e6:b9:57:b6:9c:88: db:18:80:12:2e:75:4b:e1:e8:f1:af:8c:db:d2:47:7e:69:86: 96:a3:95:93:35:f8:0e:ae:4b:de:c5:1f:79:95:d4:04:34:af: 9a:9c:16:20 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6x7+8O6bbxpSN4oWKF0DPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwOTJkOGQ1NTExYjE5ZWNlNDU2OTYwZjIzYmZhODg2ZWUx ZDU3MGIwHhcNMjYwMTAxMTgxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDdjMjhjZDUwNGNmODgzNWRjMDA2ZjgwNWE5Y2UwZTEzYzYyZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxz/rnMsFKr3MiL4EnNHeVg+Hx87t AtS5knXfYlJFoBPhC4Hl5QVOJB5CBKr8aG0FdHs9nCzVhkw90cu3Vbf6CF3Bp9dP Pck7OLRxhJk4sKM6uIcysrmOaFxHofMrF6dZ1MTET+5cjA/A90crHCRPyRW0B4lf RqAa9SV5aEq6SJo0bDajAyJR9J8/B5kbB0/z7hPUOqK05XW0auyjoTXGNQpzAREf wSWKAAW33hlnc0HgRPJ4ybniRmMFM9Jh9BSi78jjVusUmItZUEz9TdgLe+HNJI0P vIOGpSPrB2E50kIoV3vrXVOwLTaMov5xfaosNANfAhPltTUir3Q8vc3TXwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCB8KM1QTPiDXcAG+AWpzg4Txi4iMB8GA1UdIwQY MBaAFMCS2NVRGxns5FaWDyO/qIbuHVcLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0pMWTFWRWJHZXprVnBZUEk3LW9odTRkVndzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9kNDMwZDktZDIxNC00MWMwLThlNTEt MjY3YTE2YjQ2MjlmLzEvSUh3b3pWQk0tSU5kd0FiNEJhbk9EaFBHTGlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9kNDMwZDktZDIxNC00MWMwLThlNTEtMjY3YTE2YjQ2Mjlm LzEvd0pMWTFWRWJHZXprVnBZUEk3LW9odTRkVndzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFW2ogAwQC bT0EMA0GCSqGSIb3DQEBCwUAA4IBAQCubzO8jiFeP8vMBxhMdzsrAcgv1W5EcbV+ rsthLtelIPLepcQBm8ACA6Jux+L5jlvETGV1iNguN/6v5oe42m9ABVPUc85x03N3 o8vsQAMOJ+cVQ5ZU8GFncq26BG89AXJJOQcMmtr9Ndbng55/3DdUFucfyiaz0/la CcnnvWiHDh3f1wMUTO2O+kXvVhlOYYzYA4UUVUJXzabYyM+zA8s9ZXhIuyVF7RPz 74egzbpMCHcYnzfWCbaS8NBCglv9CZPov2zW5DmFe3btRwIZhx9Z+bnmuVe2nIjb GIASLnVL4ejxr4zb0kd+aYaWo5WTNfgOrkvexR95ldQENK+anBYg -----END CERTIFICATE-----Generated at Tue Jan 20 01:21:55 2026 by rpki-client